Phishing is a form of social engineering that is based on approaches from someone you know. This is popular because those receiving the messages will be more trusting if they thinking they are getting a message, link or request from a friend, a relative, or an organisation. Phishing attacks often include links to ‘copycat’ websites that look legitimate, such as a bank, business, or government office, which then ask users to log in—thus revealing their passwords etc to the hackers. The website you will be taken to may look very legitimate with all the right logos, and content. In fact, the criminals may have copied the exact format and content of the legitimate site. (See below for how to check out copycat websites). The links might also infect their device with malware.